New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Error in Nessus scanner #522

Closed
mhofstaetter-kag opened this Issue Jul 31, 2017 · 2 comments

Comments

Projects
None yet
2 participants
@mhofstaetter-kag

mhofstaetter-kag commented Jul 31, 2017

With the fix ob the Bug #494 a new Problem occurs.

Nessus server returned error code: 405
Message: {"error":"The requested method is not allowed for this URL"} at /opt/seccubus/scanners/Nessus6/scan line 539.
Nessus server returned error code: 405
Message: {"error":"The requested method is not allowed for this URL"}
3 retries left
Sleeping for 30 seconds before retring
Nessus server returned error code: 405
Message: {"error":"The requested method is not allowed for this URL"}
2 retries left
Sleeping for 30 seconds before retring
Nessus server returned error code: 405
Message: {"error":"The requested method is not allowed for this URL"}
1 retries left
Sleeping for 30 seconds before retring
Nessus server returned error code: 405
Message: {"error":"The requested method is not allowed for this URL"}
0 retries left
Sending notifications for scan end...
0 notification(s) sent

I managed to fix this by adding back the lines

$json = rest_post('/scans',encode_json($scandata),\$r);
die "Cannot create scan" if ($r->code() != 200);

under
print "Imported scan targets: $scandata->{settings}{text_targets} \n" if $verbose;

after this i got

Use of uninitialized value in string eq at /opt/seccubus/scanners/Nessus6/scan line 288.
Use of uninitialized value in string eq at /opt/seccubus/scanners/Nessus6/scan line 288.

This was fixed by changing the @formats part,
my @formats = qw(nessus html);
since our nessus doesn't provide pdf export. If i remember correctly there was an better error message in an older version of seccubus. This is the reason i already knew the solution in our case. Maybe you can manage to get a more fitting error message for this case.

I'm not very familiar with GIT or perl, so i hope this report is sufficient.

@seccubus

This comment has been minimized.

Member

seccubus commented Jul 31, 2017

I can reproduce the error. I'll work on a fix. An see what I can do in terms of unit testing.

@seccubus seccubus self-assigned this Jul 31, 2017

@seccubus seccubus added the bug label Jul 31, 2017

@seccubus seccubus added this to the 2017Q3 milestone Jul 31, 2017

@seccubus

This comment has been minimized.

Member

seccubus commented Aug 1, 2017

O.K. I've fix the first bug You reported. Apparently I wasn't really with it when I built this feature. :(

FOr the second bug I made what gets exported from nessus configurable.
I was unable to reproduce this condition myself.

@seccubus seccubus closed this in 0528b0e Aug 2, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment